Design/Logic Flaw

An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can manipulate the value of a function pointer used in opwrite in srport/opwrite.c in order to gain control of the flow of execution...

CVE-2021-44506

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. A lack of input validation in calls to doverify in srunix/doverify.c allows attackers to attempt to jump to a NULL pointer by corrupting a function pointer...

CVE-2021-44486

An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can manipulate the value of a function pointer used in opwrite in srport/opwrite.c in order to gain control of the flow of execution...

CVE-2021-44482

CVE-2021-44482 affects YottaDB up to r1.32 and V7.0-000. The issue is a lack of input validation in calls to do_verify in sr_unix/do_verify.c, which can allow an attacker to jump to a NULL pointer by corrupting a function pointer. Documented impact includes potential high availability concerns du...

YottaDB 输入验证错误漏洞

YottaDB is a real-time database from YottaDB, Inc. A security vulnerability exists in YottaDB r1.32 and earlier, which stems from missing input validation in the call to doverify in srunix/doverify.c. An attacker could use this vulnerability to attempt to jump to a NULL pointer by corrupting the...

FIS GT.M 代码问题漏洞

FIS GT.M is a database platform. A security vulnerability exists in FIS GT.M versions prior to V7.0-000, which stems from the lack of input validation in the call to doverify in srunix/doverify.c. The vulnerability can be exploited to attempt to jump to a NULL pointer by corrupting the function...

PT-2022-12153 · Fis +3 · Fis Gt.M +3

Name of the Vulnerable Software and Affected Versions: FIS GT.M versions through V7.0-000 Description: The issue is related to a lack of input validation in calls to do verify in sr unix/do verify.c, which allows attackers to attempt to jump to a NULL pointer by corrupting a function pointer...

OSV-2022-188 Incorrect-function-pointer-type in cv::split

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44937 Crash type: Incorrect-function-pointer-type Crash state: cv::split cv::split TestSplitAndMerge...

CVE-2022-25258

An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests ones with a large array index and ones associated with NULL function pointer retrieval. Memory corruption might occur...

Input validation

Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2021-30353

CVE-2021-30353 involves improper validation of a function pointer type with the actual function signature, causing an assertion in Qualcomm Snapdragon components. Affected products span Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Voice & Music, and Wearables. The CVSS da...

CVE-2021-30353

Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables...

PT-2022-10014 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to improper validation of function pointer type with actual function signature, which can lead to assertion in various Snapdragon products, including...

多款Qualcomm产品安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from a...

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

Design/Logic Flaw

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

Denial Of Service (DoS)

exim4:buster is vulnerable to denial of service. The vulnerability exists because of failure to reset function pointer after BDAT error...

libvncserver: websocket decoding buffer overflow

A flaw was found in libvncserver. A heap-based buffer overflow within the websocket decoding functionality is possible, which can lead to exploitation by a malicious attacker to overwrite a function pointer. The highest threat from this vulnerability is to data confidentiality and integrity as we...

PAC Bypass Due To Unprotected Function Pointer Imports Exploit

PAC aims to prevent an attacker with the ability to read and write memory from executing arbitrary code. It does that by cryptographically signing and validating code pointers as well as some data pointers at runtime. However, it seems that imports of function pointers from shared libraries in...